?
Solved

Finding spyware and hidden monitoring software

Posted on 2007-11-23
2
Medium Priority
?
764 Views
Last Modified: 2013-11-18
We have a SBS 2003 that has very confidential information.

I did a McAfee Viruscan today and immediately received the Notification "The On-Demand Scan found alterations to code or data which may indicate that a rootkit is attempting to hide files, registry keys, processes or other items..."

It's the first time I've come across this and, although McAfee suggests a scan in safe mode, are there any good tools or ways using  McAfee Enterprise edition to determine if this is serious monitoring software and where it's coming from?

Thanks,

Mike
0
Comment
Question by:mikeabc27
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 2

Expert Comment

by:Dominik_L
ID: 20338845
There are many anti-rootkit utilities, but there is more probability that this is false alarm than it's really a rootkit.
You may try:
http://dobreprogramy.pl/index.php?dz=22&id=2181&t=55
http://dobreprogramy.pl/index.php?dz=22&id=1497&t=55

Try also online virus scanners like:
http://www.kaspersky.com/virusscanner
0
 
LVL 10

Accepted Solution

by:
yasserd earned 1500 total points
ID: 20340792
0

Featured Post

U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The Cyber News Rundown brings you the latest happenings in cyber news weekly. Who am I? I’m Connor Madsen, a Webroot Threat Research Analyst, and a guy with a passion for all things security. Any more questions? Just ask.
In this blog we highlight approaches to managed security as a service.  We also look into ConnectWise’s value in aiding MSPs’ security management and indicate why critical alerting is a necessary integration.
This video explains how to create simple products associated to Magento configurable product and offers fast way of their generation with Store Manager for Magento tool.
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question